| 1 |
Anthony G. Basile posted on Tue, 26 Oct 2010 07:23:58 -0400 as excerpted: |
| 2 |
|
| 3 |
> On 10/26/2010 02:45 AM, Mike Frysinger wrote: |
| 4 |
>> hardened systems (as well as my non-hardened ones) have been running |
| 5 |
>> FEATURES=sfperms for years with no known bugs. so unless someone has a |
| 6 |
>> compelling reason otherwise, i'll be enabling this in |
| 7 |
>> profiles/default/linux/ for all linux systems. |
| 8 |
>> -mike |
| 9 |
>> |
| 10 |
> Good idea. Is this in response to the $ORIGIN root exploit in glibc? |
| 11 |
> (bug #341755). |
| 12 |
|
| 13 |
You apparently missed his followup. Quoting: |
| 14 |
|
| 15 |
>> nm. tove pointed out that portage already takes care of this in its |
| 16 |
>> make.globals. |
| 17 |
|
| 18 |
Tho one wonders about the other PMs... but do they even use FEATURES the |
| 19 |
same way? |
| 20 |
|
| 21 |
-- |
| 22 |
Duncan - List replies preferred. No HTML msgs. |
| 23 |
"Every nonfree program has a lord, a master -- |
| 24 |
and if you use the program, he is your master." Richard Stallman |
Archives